Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/a7ddf6-2394-48d3-bfa1-6d655cd94468/1/ujugpy9x55q9MEXm2ljzmGS-MZQ.roa
File: ujugpy9x55q9MEXm2ljzmGS-MZQ.roa (raw, json)
Hash identifier: zqPk1tWdFV3I4HxkaTfXXYwHYNKELZaSsy6qm/tuOFw=
Subject key identifier: BA:3B:A0:A7:2F:71:E7:9A:BD:30:45:E6:DA:58:F3:98:64:BE:31:94
Certificate issuer: /CN=d513872512f1f2d037b401c2603ca8994e721e55
Certificate serial: 018CC2DAC8BDC1BB00B00F345D4545FDCF1B
Authority key identifier: D5:13:87:25:12:F1:F2:D0:37:B4:01:C2:60:3C:A8:99:4E:72:1E:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1ROHJRLx8tA3tAHCYDyomU5yHlU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/a7ddf6-2394-48d3-bfa1-6d655cd94468/1/ujugpy9x55q9MEXm2ljzmGS-MZQ.roa
Signing time: Mon 01 Jan 2024 02:29:27 +0000
ROA not before: Mon 01 Jan 2024 02:29:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49367
IP address blocks: 83.136.104.0/21 maxlen: 24
94.198.96.0/21 maxlen: 24
95.141.32.0/20 maxlen: 24
94.198.101.0/24 maxlen: 24
158.58.168.0/21 maxlen: 24
158.58.172.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 28 Feb 2024 14:37:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:da:c8:bd:c1:bb:00:b0:0f:34:5d:45:45:fd:cf:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d513872512f1f2d037b401c2603ca8994e721e55
Validity
Not Before: Jan 1 02:29:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ba3ba0a72f71e79abd3045e6da58f39864be3194
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:0f:e5:14:0c:20:30:42:6c:9f:af:30:56:8d:
f0:09:be:c7:de:9f:80:64:9e:32:e4:dd:24:f6:3b:
92:ae:19:41:d0:4b:cf:c1:6c:e3:44:7e:8b:07:36:
22:fc:9c:3c:b8:64:14:f8:21:7d:54:70:6e:cc:64:
7c:86:9c:fa:bd:1b:af:ad:70:06:34:1a:ff:3a:f5:
85:f7:f7:e8:a1:73:7e:d8:08:f3:2a:7b:7a:4a:94:
38:fd:55:d0:48:82:6e:10:5e:7e:0e:14:9b:09:f3:
ca:e4:a3:ea:b7:69:8b:39:d5:54:75:a0:8d:94:f3:
4d:33:70:17:31:d1:5a:a7:7d:ea:4d:ce:8c:c6:ae:
15:6f:61:da:11:5c:e4:16:ab:76:52:ec:96:6e:d3:
43:4e:a1:af:ae:e2:b9:ab:de:f0:97:65:42:e5:4c:
ee:47:92:8d:66:8b:dd:65:4c:8c:1c:24:6b:e1:db:
1b:19:93:72:3a:38:72:83:d3:61:11:ff:ed:bf:ca:
5a:1e:cc:a7:dc:d7:a7:d9:10:1c:e1:80:15:7d:63:
03:71:0c:cf:e9:d3:96:89:42:0f:33:59:e1:8c:d7:
8e:00:fe:2a:32:64:f3:81:65:5e:09:c1:96:c7:26:
d9:90:e0:eb:85:41:1d:ac:e0:1c:bb:de:83:4b:46:
62:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:3B:A0:A7:2F:71:E7:9A:BD:30:45:E6:DA:58:F3:98:64:BE:31:94
X509v3 Authority Key Identifier:
keyid:D5:13:87:25:12:F1:F2:D0:37:B4:01:C2:60:3C:A8:99:4E:72:1E:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1ROHJRLx8tA3tAHCYDyomU5yHlU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/a7ddf6-2394-48d3-bfa1-6d655cd94468/1/ujugpy9x55q9MEXm2ljzmGS-MZQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/a7ddf6-2394-48d3-bfa1-6d655cd94468/1/1ROHJRLx8tA3tAHCYDyomU5yHlU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.136.104.0/21
94.198.96.0/21
95.141.32.0/20
158.58.168.0/21
Signature Algorithm: sha256WithRSAEncryption
19:9b:94:44:33:b5:98:a7:0d:25:72:c9:5e:00:d9:b8:56:31:
fc:8f:6a:34:08:17:d6:b3:ea:f8:f2:6a:32:20:e5:5b:19:31:
42:45:cd:4b:fd:54:ed:16:73:f8:b3:d8:9b:ba:78:2d:78:fc:
6e:a2:4d:da:b9:46:99:ff:cf:cd:b9:66:48:cb:58:f8:0c:53:
f1:1b:d8:a3:de:b9:39:e4:ad:36:c1:c4:f2:ea:89:63:b3:d9:
61:eb:6c:71:f4:f0:47:63:ea:59:18:85:23:3a:b6:33:64:7f:
30:f0:4e:fb:0e:aa:b7:ee:61:60:87:a1:a4:91:a8:56:2b:85:
fe:88:50:e7:18:99:f3:f2:b0:dc:89:b1:97:94:91:25:67:f5:
15:74:99:cd:4b:6a:6a:80:7d:01:ed:9a:5c:00:0b:ea:31:73:
17:5e:54:32:c1:b2:0f:a7:36:f8:08:56:7f:3c:5d:84:17:f8:
07:c2:42:48:a2:8a:41:dd:c8:2f:e6:10:2a:ab:0d:10:7d:7d:
b8:22:71:de:c5:79:8b:9f:23:0c:d2:ec:0f:8d:58:51:80:6a:
4d:1a:b7:13:09:bf:93:57:d4:54:ce:cd:51:0a:e3:36:c3:a3:
68:ca:c9:05:41:a9:2d:11:d4:c1:fd:7f:02:46:ba:24:77:4c:
af:fc:5f:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:13:26 2024 by rpki-client on console-ams.rpki-client.org